‘High Risk’ Flaw Fixed in Google Chrome

Google has pushed out a new version of its Chrome browser to fix a high-severity security hole that could lead to malicious code execution attacks.
The vulnerability could be exploited to run arbitrary code within the Google Chrome sandbox, the company said in an advisory.

Google has pushed out a new version of its Chrome browser to fix a high-severity security hole that could lead to malicious code execution attacks.

The vulnerability could be exploited to run arbitrary code within the Google Chrome sandbox, the company said in an advisory.

The raw details:

  • The v8 engine uses a common dtoa() implementation to parse strings into floating point numbers. We have applied a patch to fix a recent bug in this component.
  • Severity: High. An attacker might be able to run arbitrary code within the Google Chrome sandbox.

Suggested articles

biggest headlines 2020

The 5 Most-Wanted Threatpost Stories of 2020

A look back at what was hot with readers — offering a snapshot of the security stories that were most top-of-mind for security professionals and consumers throughout the year.